NCC Group Research Blog
Technical Advisory: Stored and Reflected XSS Vulnerability in Nagios Log Server (CVE-2021-35478,CVE-2021-35479)
4 months ago
Technical Advisory: Shell Injection in SourceTree
4 months ago
Technical Advisory: SMB Hash Hijacking and User Tracking in MS Outlook
4 months ago
Technical Advisory: Ruby on Rails – Possible XSS Vulnerability in ActionView tag helpers (CVE-2022-27777)
4 months ago
Technical Advisory: Shell Injection in MacVim mvim URI Handler
4 months ago
Technical Advisory: Pulse Connect Secure – RCE via Uncontrolled Gzip Extraction (CVE-2020-8260)
4 months ago
Technical Advisory: Reflected Cross-Site Scripting (XSS) vulnerability in Jenkins Delivery Pipeline plugin
4 months ago
Technical advisory: Remote shell commands execution in ttyd
4 months ago
Technical Advisory: Pulse Connect Secure – Arbitrary File Read via Logon Message (CVE-2020-8255)
4 months ago
Technical Advisory: Pulse Connect Secure – RCE via Uncontrolled Archive Extraction – CVE-2021-22937 (Patch Bypass)
4 months ago
Technical Advisory: OS Command Injection in Silver Peak EdgeConnect Appliances (CVE-2020-12148, CVE-2020-12149)
4 months ago
Technical Advisory: PDFTron JavaScript URLs Allowed in WebViewer UI (CVE-2021-39307)
4 months ago
Technical Advisory: Multiple Vulnerabilities in SmarterMail
4 months ago
Technical Advisory: Multiple Vulnerabilities in Xerox Printers
4 months ago
Technical Advisory: Nexpose Hard‐coded Java Key Store Passphrase Allows Decryption of Stored Credentials
4 months ago
Technical Advisory: Multiple Vulnerabilities in ManageEngine Desktop Central
4 months ago
Technical Advisory: Multiple Vulnerabilities in Ricoh Printers
4 months ago
Technical Advisory: Multiple Vulnerabilities in Lexmark Printers
4 months ago
Technical Advisory: Multiple Vulnerabilities in MailEnable
4 months ago
Checked
44 minutes 18 seconds ago